exploitDog

CVE-2024-49244

Опубликовано: 17 окт. 2024

Источник: nvd

CVSS3: 8.5

EPSS Низкий

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in cmssoft CSV Product Import Export for WooCommerce allows SQL Injection.This issue affects CSV Product Import Export for WooCommerce: from n/a through 1.0.0.

Ссылки

https://patchstack.com/database/vulnerability/csv-wc-product-import-export/wordpress-sv-product-import-export-for-woocommerce-plugin-1-0-0-sql-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 42%

0.00202

Низкий

8.5 High

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-wqpc-58rm-xq5r

CVSS3: 8.5

github

больше 1 года назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in cmssoft CSV Product Import Export for WooCommerce allows SQL Injection.This issue affects CSV Product Import Export for WooCommerce: from n/a through 1.0.0.

EPSS

Процентиль: 42%

0.00202

Низкий

8.5 High

CVSS3

Дефекты

CWE-89